KitGuru KitGuru.net – Tech News | Hardware News | Hardware Reviews | IOS | Mobile | Gaming | Graphics Cards
OurMine has made quite a name for itself, the hacking group has successfully targeted many high-profile people and companies all in the name of ‘testing their security'. This week however, it appears the group is taking a new approach by posting 3.12TB of Vevo's internal files online after one of the company's employees told the group to “f*ck off”.
For those who don't know, Vevo is a joint-venture between Universal Music Group, Sony Music Entertainment, Warner Music Group, Alphabet Inc and Abu Dhabi Media. With that in mind, Vevo has a lot of information pertaining to artists and the music business under its belt.
According to The Inquirer, most of the files leaked by OurMine are fairly tame and uninteresting, with a lot of it being music chart information, plans for upcoming social media campaigns and some details about artists under Vevo management. There was some sensitive information to be found though, including the fire alarm code for the company's offices.
OurMine doesn't usually leak information, so this particular story caught us by surprise. As it turns out, the group apparently decided to leak the data after one of Vevo's employees offended them. Vevo itself has confirmed that the hack was legitimate in its own statement, which reads: “We can confirm that Vevo experienced a data breach as a result of a phishing scam via Linkedin. We have addressed the issue and are investigating the extent of exposure”.
KitGuru Says: This has been an unusual development given that OurMine doesn't typically leak large amounts of data. Still, it doesn't seem like this particular leak was too damaging for Vevo either way.
never piss off hacking groups – especially if your security is shit. lesson learned.
lol what these big companies need to do is have built in code that will see when an outside sourced that is unauthorized and send out some sort of control or signal or malware that pretty much deletes the unauthorized peoples computers and all computers on that person or persons network or networks. Now someone will say oh but what if company employees have to go on to do work. The answer is simple all employees have a hasp that is plugged into their own system at home that is outside the company network and can get onto to the company servers that way.
No hasp no connection to the network and your local hard drives are wiped clean. Someone else will say oh the hackers could just emulate the hasp. The hasp would have rotating cypher keys that have to match up with company servers each day no match up no connection.
Nothing is fool proof but these companies do actually have to at least try to protect client information to some degree. What they are doing now does not seem to work very well. Maybe my idea would not work but at least it is an idea and I did not even charge them for it.